Loading…
or to bookmark your favorites and sync them to your phone or calendar.
Company: Security Certificate clear filter
Tuesday, February 11
 

4:00pm PST

PRO WORKSHOP: Hitchhikers Guide to Secure AI Development
Tuesday February 11, 2025 4:00pm - 4:50pm PST
AI DevWorld Stage 1
Ankur Chowdhary, 6Sense, Staff Security Engineer

In this talk I will discuss how organizations can define the scope of AI security based on understanding the context of AI use and integrate secure AI development lifecycle as a part of existing software development lifecycle (SDLC) practices. The talk will also cover metrics during each phase of AI development that should be considered for establishing the success criteria of secure and responsible development of AI system for an organization. 
Speakers
avatar for Ankur Chowdhary

Ankur Chowdhary

Staff Security Engineer, Appsec, 6Sense
Dr. Ankur Chowdhary is a cybersecurity researcher. He received Ph.D. (2020) and M.S. (2015) with specialization in cybersecurity from Arizona State University (ASU). His research interests include appsec, cloud security and AI/ML in cybersecurity.
Tuesday February 11, 2025 4:00pm - 4:50pm PST
AI DevWorld Stage 1
  AI DevWorld
 
Wednesday, February 12
 

1:30pm PST

OpenAPI Summit: No AI without APIs
Wednesday February 12, 2025 1:30pm - 1:55pm PST
DevExec World Stage
Jeremy Snyder, Firetail, CEO

Application Programming Interfaces (APIs) and Artificial Intelligence (AI) are two of the most important developments in tech of the last 10 years. While AI has grabbed the majority of headlines lately, APIs are the unsung heroes, the “connective tissue” that ensures seamless integration across our digital lives. But how will the more recent emergence of AI affect API security, and how do APIs affect the security of AI? 
In this talk, we’ll explore these two hot topics that make our online worlds work. AI can be helpful to API security by allowing security teams to automate certain processes or make testing more efficient, but it can also be used to help malicious actors automate their attacks.
 
Speakers
avatar for Jeremy Snyder

Jeremy Snyder

CEO, FireTail
Jeremy is the founder and CEO of FireTail.io, an end-to-end API security startup. Prior to FireTail, Jeremy worked in M&A at Rapid7, a global cyber leader, where he worked on the acquisitions of 3 companies during the pandemic. Jeremy previously led sales at DivvyCloud, one of the... Read More →
Wednesday February 12, 2025 1:30pm - 1:55pm PST
DevExec World Stage
  Dev Exec World

3:00pm PST

OpenAPI Summit: API Resiliency Testing
Wednesday February 12, 2025 3:00pm - 3:25pm PST
DevExec World Stage
Hari Krishnan, Specmatic, Polyglot Full Stack Developer

Are your APIs leaving you worried about data loss, data corruption, security vulnerabilities, or poor user experiences? If so, this talk is exactly what you need to address these issues. Discover how you can leverage your API specifications—like OpenAPI, AsyncAPI, and GraphQL SDLs—to test and enhance the resiliency of your APIs with a completely #NOCODE approach.

In this talk, you’ll gain insights into the importance of API resilience and how to build APIs that can gracefully handle flaky dependencies in real-world scenarios. We’ll explore the role of contract testing in ensuring resilience and demonstrate how to transform API specifications into executable contracts that can be continuously validated. You’ll see how to set up resilience tests, including those for latency, errors, and unexpected disconnections. The session features live demos on configuring tools to simulate these conditions, interpret the results, and iteratively enhance your API designs.
Speakers
avatar for Hari Krishnan

Hari Krishnan

Polyglot Full Stack Developer, Specmatic
Co-creator of Specmatic and Perfiz. I also advise organisations both large and small on their transformation journey. Apart from bringing ideas to life as working software products, I coach developers, project managers, product owners and engineering leaders.
Wednesday February 12, 2025 3:00pm - 3:25pm PST
DevExec World Stage
  Dev Exec World
 
Thursday, February 13
 

10:00am PST

OPEN Session: Elevating Cloud Security with a Graph-based Approach
Thursday February 13, 2025 10:00am - 10:25am PST
OpsWorld Stage
Roy Maor, Cisco, Algorithm Team Lead

It is evident that using a graph theory-based approach to reduce cyber security risk on the cloud is a need rather than a want. Having a reliable data model and a continuous mapping of your
cloud environment to a graph database yields value in two different aspects. First, visibility – gaining a deep understanding of the environment’s cloud architecture, and second, cloud risk
management – identifying critical attack paths in the environment and mitigating the risk they present. By finding the right connections between graph algorithms to cloud security
misconfigurations and vulnerabilities, gaining brand new visibility on faulty cloud architecture and turning it into high-value context-based risk insights becomes possible.
Speakers
avatar for Roy Maor

Roy Maor

Algorithm Team Lead, Cisco
Roy Maor is an Algorithm Team Leader at Panoptica, Cisco's cloud application security product. Roy’s team drives the development of the product's trademark cloud graph, a dynamic engine detecting cloud security threats through graph theory models and algorithms. Roy is deeply passionate... Read More →
Thursday February 13, 2025 10:00am - 10:25am PST
OpsWorld Stage
  OpsWorld

10:30am PST

PRO Session: AI Frontiers: Shielding Digital Gateways from Bot Invasions
Thursday February 13, 2025 10:30am - 10:55am PST
AI DevWorld MAIN STAGE
Parth Shukla, Cequence Security, Security Analyst
Khyati Ganatra, Cequence Security,  Manager, Applied ML 

In the presentation titled "AI Frontiers: Shielding Digital Gateways from Bot Invasions," we delve into the forefront of cyber defense against bot-driven threats that exploit API vulnerabilities. This comprehensive study explores how advanced AI and ML models are being harnessed to fortify digital defenses, offering a detailed analysis of API communication patterns and the evolving landscape of bot attacks. Through a series of real-world case studies, we illuminate the mechanisms of sophisticated bot strategies—ranging from data breaches and account takeovers to shopping bots that deplete inventories. The narrative progresses to unveil how AI/ML technologies serve as the cornerstone of innovative defense mechanisms. We dissect the architecture of AI-driven systems tailored to detect and counteract anomalous behaviors indicative of bot activities, leveraging vast datasets to train ML models that adeptly differentiate between legitimate user interactions and malicious bot intrusions. The discussion further navigates through the technical and operational nuances of implementing AI/ML defenses, emphasizing predictive analytics for preemptive action, machine learning for dynamic threat adaptation, and the overarching impact of such technologies in securing digital ecosystems against the insidious threats posed by automated attacks. This presentation not only highlights the challenges but also showcases the resilience and adaptability of AI/ML solutions in the ever-evolving battle against digital villains.
Speakers
avatar for Khyati Ganatra

Khyati Ganatra

Manager, Applied ML, Cequence Security
I am deeply fascinated by AI's profound ability to reshape industries and redefine the way we live and work. With a keen interest in the intersection of ML and cybersecurity, I have dedicated my career to developing cutting-edge ML solutions that protect organizations from malicious... Read More →
avatar for Parth Shukla

Parth Shukla

Security Analyst, Cequence Security
Parth Shukla is a cyber security analyst at Cequence Security and has a great passion for Web Application Security. Parth Shukla is also a Bug hunter; community builder and Cyber security enthusiast and I believe in the quote “security is a myth”.
Thursday February 13, 2025 10:30am - 10:55am PST
AI DevWorld MAIN STAGE
  AI DevWorld
 
Tuesday, February 18
 

1:00pm PST

[Virtual] PRO WORKSHOP: Hitchhikers Guide to Secure AI Development
Tuesday February 18, 2025 1:00pm - 1:50pm PST
VIRTUAL AI DevWorld Stage 1
Ankur Chowdhary, 6Sense, Staff Security Engineer

In this talk I will discuss how organizations can define the scope of AI security based on understanding the context of AI use and integrate secure AI development lifecycle as a part of existing software development lifecycle (SDLC) practices. The talk will also cover metrics during each phase of AI development that should be considered for establishing the success criteria of secure and responsible development of AI system for an organization. 
Speakers
avatar for Ankur Chowdhary

Ankur Chowdhary

Staff Security Engineer, Appsec, 6Sense
Dr. Ankur Chowdhary is a cybersecurity researcher. He received Ph.D. (2020) and M.S. (2015) with specialization in cybersecurity from Arizona State University (ASU). His research interests include appsec, cloud security and AI/ML in cybersecurity.
Tuesday February 18, 2025 1:00pm - 1:50pm PST
VIRTUAL AI DevWorld Stage 1
  AI DevWorld
 
Wednesday, February 19
 

1:30pm PST

[Virtual] OpenAPI Summit: No AI without APIs
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Dev Exec World
Jeremy Snyder, Firetail, CEO

Application Programming Interfaces (APIs) and Artificial Intelligence (AI) are two of the most important developments in tech of the last 10 years. While AI has grabbed the majority of headlines lately, APIs are the unsung heroes, the “connective tissue” that ensures seamless integration across our digital lives. But how will the more recent emergence of AI affect API security, and how do APIs affect the security of AI? 
In this talk, we’ll explore these two hot topics that make our online worlds work. AI can be helpful to API security by allowing security teams to automate certain processes or make testing more efficient, but it can also be used to help malicious actors automate their attacks.

Speakers
avatar for Jeremy Snyder

Jeremy Snyder

CEO, FireTail
Jeremy is the founder and CEO of FireTail.io, an end-to-end API security startup. Prior to FireTail, Jeremy worked in M&A at Rapid7, a global cyber leader, where he worked on the acquisitions of 3 companies during the pandemic. Jeremy previously led sales at DivvyCloud, one of the... Read More →
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Dev Exec World
  Dev Exec World

2:00pm PST

[Virtual Exclusive] OWASP Security Summit: Building a Network Telemetry Platform to minimize Security Threats
Wednesday February 19, 2025 2:00pm - 2:25pm PST
VIRTUAL Dev Security World
Siri Varma Vegiraju, Microsoft, Senior Software Engineer

Maintaining robust network security in the cloud environment is more crucial than ever. This talk explores the design and implementation of a proactive network telemetry platform that strengthens infrastructure security. The platform collects and analyzes telemetry data from virtual machines to identify and scrutinize traffic patterns deviating from industry-standard baselines. By generating actionable insights and promptly notifying relevant teams of potential issues, it enables swift problem resolution. This proactive approach significantly reduces the attack surface, minimizes exposure to network attacks, and enhances overall cloud security. 
Speakers
avatar for Siri Varma Vegiraju

Siri Varma Vegiraju

Senior Software Engineer, Microsoft
Siri Varma Vegiraju is a seasoned professional in healthcare, cloud computing, and security. Currently, he focuses on securing Azure Cloud workloads, leveraging his extensive experience in distributed systems and real-time streaming solutions. Prior to his current role, Siri contributed... Read More →
Wednesday February 19, 2025 2:00pm - 2:25pm PST
VIRTUAL Dev Security World
  Dev Security World

2:30pm PST

[Virtual] OWASP Security Summit: API Security 101: How to Not Be Featured in a Top Ten Breaches List
Wednesday February 19, 2025 2:30pm - 2:55pm PST
VIRTUAL Dev Security World
Dan Barahona, APISec, Co-Founder

This talk will dive into the fundamentals and best practices for API Security. By understanding the 3 Pillars of API Security, encompassing governance, testing and monitoring, attendees will gain a comprehensive understanding of the essential elements required to safeguard APIs. The session will conclude with practical insights, offering best practices and valuable do's and don'ts for implementing and maintaining secure APIs.

Why are APIs under attack?
-83% of internet traffic are APIs
-APIs are under-secured

How do APIs get attacked?
Attackers look for APIs that are over-permissioned, return to much information, access unauthorized functions, and expose logic flaws. Attackers are able to bypass a web or mobile app and hit the API directly.

OWASP top 10!!
#1-#4 are the biggest issues

More compliance regulations are including testing APIs.
-PCI
-HIPPA
-GDPR
-FedRAMP
Speakers
avatar for Dan Barahona

Dan Barahona

Co-Founder, APIsec University
Dan is a 20+ year cybersecurity veteran, having held exec positions at companies including Qualys, ArcSight, Anomali and APIsec. He founded APIsec University in 2022 to offer free, non-vendor training on API security. The site has grown to over 50,000 students in its first 6 months... Read More →
Wednesday February 19, 2025 2:30pm - 2:55pm PST
VIRTUAL Dev Security World
  Dev Security World
 
Thursday, February 20
 

10:00am PST

[Virtual] OPEN Session: Elevating Cloud Security with a Graph-based Approach
Thursday February 20, 2025 10:00am - 10:25am PST
VIRTUAL OpsWorld
Roy Maor, Cisco, Algorithm Team Lead

It is evident that using a graph theory-based approach to reduce cyber security risk on the cloud is a need rather than a want. Having a reliable data model and a continuous mapping of your
cloud environment to a graph database yields value in two different aspects. First, visibility – gaining a deep understanding of the environment’s cloud architecture, and second, cloud risk
management – identifying critical attack paths in the environment and mitigating the risk they present. By finding the right connections between graph algorithms to cloud security
misconfigurations and vulnerabilities, gaining brand new visibility on faulty cloud architecture and turning it into high-value context-based risk insights becomes possible.
Speakers
avatar for Roy Maor

Roy Maor

Algorithm Team Lead, Cisco
Roy Maor is an Algorithm Team Leader at Panoptica, Cisco's cloud application security product. Roy’s team drives the development of the product's trademark cloud graph, a dynamic engine detecting cloud security threats through graph theory models and algorithms. Roy is deeply passionate... Read More →
Thursday February 20, 2025 10:00am - 10:25am PST
VIRTUAL OpsWorld
  OpsWorld

10:30am PST

[Virtual] PRO Session: AI Frontiers: Shielding Digital Gateways from Bot Invasions
Thursday February 20, 2025 10:30am - 10:55am PST
VIRTUAL AI DevWorld Main Stage
Parth Shukla, Cequence Security, Security Analyst
Khyati Ganatra, Cequence Security,  Manager, Applied ML

In the presentation titled "AI Frontiers: Shielding Digital Gateways from Bot Invasions," we delve into the forefront of cyber defense against bot-driven threats that exploit API vulnerabilities. This comprehensive study explores how advanced AI and ML models are being harnessed to fortify digital defenses, offering a detailed analysis of API communication patterns and the evolving landscape of bot attacks. Through a series of real-world case studies, we illuminate the mechanisms of sophisticated bot strategies—ranging from data breaches and account takeovers to shopping bots that deplete inventories. The narrative progresses to unveil how AI/ML technologies serve as the cornerstone of innovative defense mechanisms. We dissect the architecture of AI-driven systems tailored to detect and counteract anomalous behaviors indicative of bot activities, leveraging vast datasets to train ML models that adeptly differentiate between legitimate user interactions and malicious bot intrusions. The discussion further navigates through the technical and operational nuances of implementing AI/ML defenses, emphasizing predictive analytics for preemptive action, machine learning for dynamic threat adaptation, and the overarching impact of such technologies in securing digital ecosystems against the insidious threats posed by automated attacks. This presentation not only highlights the challenges but also showcases the resilience and adaptability of AI/ML solutions in the ever-evolving battle against digital villains.
Speakers
avatar for Khyati Ganatra

Khyati Ganatra

Manager, Applied ML, Cequence Security
I am deeply fascinated by AI's profound ability to reshape industries and redefine the way we live and work. With a keen interest in the intersection of ML and cybersecurity, I have dedicated my career to developing cutting-edge ML solutions that protect organizations from malicious... Read More →
avatar for Parth Shukla

Parth Shukla

Security Analyst, Cequence Security
Parth Shukla is a cyber security analyst at Cequence Security and has a great passion for Web Application Security. Parth Shukla is also a Bug hunter; community builder and Cyber security enthusiast and I believe in the quote “security is a myth”.
Thursday February 20, 2025 10:30am - 10:55am PST
VIRTUAL AI DevWorld Main Stage
  AI DevWorld
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Monday, February 10
Tuesday, February 11
Wednesday, February 12
Thursday, February 13
Tuesday, February 18
Wednesday, February 19
Thursday, February 20
AI DevWorld MAIN STAGE
AI DevWorld OPEN Stage
AI DevWorld Stage 1
CloudNative World Stage
Dev Innovation World Stage
Dev Security World Stage
DeveloperWeek MAIN STAGE
DeveloperWeek PRO Stage
DevExec World Stage
Frontend World Stage
Hyatt Regency Santa Clara - Lobby
OpsWorld Stage
ProductWorld Main Stage
Roundtables
Santa Clara Convention Center - Expo Hall
Santa Clara Convention Center - Main Lobby
VIRTUAL AI DevWorld Main Stage
VIRTUAL AI DevWorld OPEN Stage
VIRTUAL AI DevWorld Stage 1
VIRTUAL Cloud Native World
VIRTUAL Dev Exec World
VIRTUAL Dev Innovation World
VIRTUAL Dev Security World
VIRTUAL DeveloperWeek MAIN STAGE
VIRTUAL Frontend World
VIRTUAL OpsWorld
VIRTUAL ProductWorld Main Stage
  • 1. Badge Pick-up & Registration
  • 2. Community Events & Experiences
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • AI DevWorld
  • Cloud Native World
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Frontend World
  • OpsWorld
  • ProductWorld
  • Tracks & Topics
  • AI & ML Certificate
  • API Certificate
  • APIs & Microservices
  • Blockchain & Web3
  • Cloud Management Certificate
  • Data Engineering
  • Data Management and Engineering Certificate
  • Dev Career
  • Dev Leadership Certificate
  • Developer Experience (DX)
  • Developer Tools
  • DevOps
  • DevOps Certificate
  • Enterprise
  • Frontend Certificate
  • Gen AI / LLMs
  • Platform Engineering
  • Product Certificate
  • Security Certificate
  • Technical Leadership & Management
  • Session Type
  • OPEN Session
  • PRO Session
  • PRO Workshop Day (Tues)
  • Conferences
  • AI & Organizational Change Management (AI DevWorld)
  • AI DevWorld
  • AI DevWorld: AI Strategy Conference
  • AI DevWorld: AI/ML Engineering Conference
  • AI DevWorld: Industry AI Conference
  • AI Ethics (AI DevWorld)
  • AI for the Enterprise (AI DevWorld)
  • AI Security & Governance & Compliance (AI DevWorld)
  • Applied AI Innovation (AI DevWorld)
  • Applied Machine Learning (AI DevWorld)
  • Bots & Language Processing (AI DevWorld)
  • Cloud Native World
  • Data Science & Predictive Models (AI DevWorld)
  • Deep AI Learning & Neural Networks (AI DevWorld)
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Finance/FinTech AI (AI DevWorld)
  • Frontend World
  • Generative AI & LLMs (AI DevWorld)
  • Healthcare & HealthTech AI (AI DevWorld)
  • Marketing & Advertising AI (AI DevWorld)
  • Methodology: Agile and Rapid Prototyping and SCRUM and Beyond (ProductWorld)
  • MLOps & AIOps (AI DevWorld)
  • OPEN Session
  • OpenAPI Summit
  • OpsWorld
  • OWASP Certified
  • Product Lead / Product Manager Roundtables (ProductWorld)
  • Product Lifecycle & Case Studies (ProductWorld)
  • Product Management Tools & Software (ProductWorld)
  • Product Roadmap Strategy & Innovation (ProductWorld)
  • Product Team Management & Structure (ProductWorld)
  • ProductWorld
  • Retail & E-commerce AI (AI DevWorld)
  • Roundtables
  • Sponsor Spotlight
  • Tensorflow & PyTorch & Open Source Frameworks (AI DevWorld)
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive